CVE-2015-2009

Published: Mar 29, 2018Modified: Nov 21, 2024

8.8

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

Cross-site request forgery (CSRF) vulnerability in the xmlrpc.cgi service in IBM QRadar SIEM 7.1 before MR2 Patch 11 Interim Fix 02 and 7.2.x before 7.2.5 Patch 4 allows remote attackers to hijack the authentication of arbitrary users for requests that insert XSS sequences via vectors related to webmin. IBM X-Force ID: 103921.

Affected (7)

Products: Ibm: Qradar Security Information And Event Manager

Ibm

1 product

Qradar Security Information And Event Manager

Configuration A

7 vulnerable

Vulnerable Software	Affected Versions
Ibm Qradar Security Information And Event Manager	From 7.2.0 to 7.2.5
Ibm Qradar Security Information And Event Manager	Version 7.1.0
Ibm Qradar Security Information And Event Manager	Version 7.1.0 mr1
Ibm Qradar Security Information And Event Manager	Version 7.1.0 mr2
Ibm Qradar Security Information And Event Manager	Version 7.2.5 patch1
Ibm Qradar Security Information And Event Manager	Version 7.2.5 patch2
Ibm Qradar Security Information And Event Manager	Version 7.2.5 patch3

Related CWEs

CWE-352

Cross-Site Request Forgery (CSRF)

The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.

References (2)

http://www-01.ibm.com/support/docview.wss?uid=swg21965821

Source: psirt@us.ibm.com

Broken Link

http://www-01.ibm.com/support/docview.wss?uid=swg21965821

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link

Timeline

No history available yet.